Recent Advisories

Severity ID Title Vendor Product Date Type
MEDIUM 5.3 CVE-2026-34027

Upload restriction bypass in Wertheim SafeController Software allows authenticated users to upload arbitrary files_CVE-2026-34027

The Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014, contains insufficient server-side file type validation in the /safe/contract...

Wertheim GmbH Wertheim SafeController Software for VAULT ROOMS (Safe Deposit Locker System) Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014 CVE
HIGH 7.1 CVE-2026-34026

Path traversal in Wertheim SafeController Software allows authenticated users to download arbitrary files_CVE-2026-34026

Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014, contains a path traversal vulnerability in the documentName parameter of the /sa...

Wertheim GmbH Wertheim SafeController Software for VAULT ROOMS (Safe Deposit Locker System) Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014 CVE
MEDIUM 5.3 CVE-2026-34025

IP restriction bypass in Wertheim SafeController Software allows logins from unauthorized network locations_CVE-2026-34025

The Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014, contains an IP restriction bypass vulnerability in the login process. The ap...

Wertheim GmbH Wertheim SafeController Software for VAULT ROOMS (Safe Deposit Locker System) Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014 CVE
HIGH 8.6 CVE-2026-34024

Missing authorization checks in Wertheim SafeController Software allow low-privileged users to access restricted functions_CVE-2026-34024

The Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014, contains missing authorization checks on multiple web application endpoints....

Wertheim GmbH Wertheim SafeController Software for VAULT ROOMS (Safe Deposit Locker System) Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014 CVE
HIGH 7.1 CVE-2026-34023

Broken WebSocket authorization in Wertheim SafeController Software allows cross-branch access to restricted functions_CVE-2026-34023

The Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014, contains an incorrect authorization vulnerability in the WebSocket communica...

Wertheim GmbH Wertheim SafeController Software for VAULT ROOMS (Safe Deposit Locker System) Wertheim SafeController Software, AssemblyVersion 6.15.8328.28014 CVE
HIGH 7.1 CVE-2026-34022

Weak custom cryptography and hard-coded keys in Wertheim SafeController 65000 allow traffic decryption_CVE-2026-34022

The Wertheim SafeController Family 65000, Controller 65000 - AssemblyVersion 6.11.8130.22319, uses weak custom cryptographic algorithms with hard-c...

Wertheim GmbH Wertheim SafeController Family 65000 Hardware for VAULT ROOMS (Safe Deposit Locker System - Microcontroller) Wertheim SafeController Family 65000, Controller 65000 - AssemblyVersion 6.11.8130.22319 CVE
HIGH 8.6 CVE-2026-34021

Lack of cryptographic protection in Wertheim SafeController 5400 enables RS-485 message sniffing and replay_CVE-2026-34021

The Wertheim SafeController 5400, Controller 5400 - AssemblyVersion 6.11.8130.22320, uses RS-485 communication between the server and the microcont...

Wertheim GmbH Wertheim SafeController 5400 Hardware for VAULT ROOMS (Safe Deposit Locker System - Microcontroller) Wertheim SafeController 5400, Controller 5400 - AssemblyVersion 6.11.8130.22320 CVE
HIGH 8.6 CVE-2026-12057

DoS + Remote Code Execution via PDF JavaScript in Foxit AI_CVE-2026-12057

When the application executes the JavaScript script embedded in the PDF within the sandbox, it fails to intercept some dangerous interfaces, which ...

Foxit Software Inc. Foxit AI before 2026-06-15 CVE
HIGH 7.8 D363BAF0-6BAA-

Exploit for Improper Input Validation in Getcomposer Composer_D363BAF0-6BAA-59BC-891C-FFB76DCFF6B6

No description provided...

N/A N/A GITHUBEXPLOIT
CRITICAL 9.1 FC17B1E5-1DBA-

Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Treck Tcp\/Ip_FC17B1E5-1DBA-5684-A537-D7493B9D3AEA

No description provided...

N/A N/A GITHUBEXPLOIT